Earlier today it sent out an email to all members of its Sega Pass forums announcing that it had detected an "unauthorised entry" into its database in the last 24 hours and taken the service offline.
"We immediately took the appropriate action to protect our consumers' data and isolate the location of the breach," read the statement. "We have launched an investigation into the extent of the breach of our public systems.
"We have identified that a subset of Sega Pass members emails addresses, dates of birth and encrypted passwords were obtained. To stress, none of the passwords obtained were stored in plain text.